As the story goes, if a cookie is set on an https request with the secure flag set to TRUE, you can then overwrite the secure cookie on a sub-sequent non-secure request. This seems odd behavior due to the same-origin-policy.I have included a quick snippet of code as an example. It requires you to have access to a server with SSL.

Who is online

Users browsing this forum: No registered users and 2 guests

You cannot post new topics in this forumYou cannot reply to topics in this forumYou cannot edit your posts in this forumYou cannot delete your posts in this forumYou cannot post attachments in this forum